Permalink
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Browse files
Browse the repository at this point in the history
Mitigate against reflected XSS attacks
Mitigate against reflected XSS attacks in production by returning the custom 404 response object instead of express' default 404 response This was discovered using the Burp pen test tool and successfully tested by passing an arbitrary url parameter GET /images/?41b68(a)184a9=1
- Loading branch information